Request a Demo
Rewterz
Patchwork APT Group – Active IOCs
December 27, 2024
Rewterz
SideWinder APT Group aka Rattlesnake – Active IOCs
December 27, 2024

Multiple Adobe Products Vulnerabilities

Severity

High

Analysis Summary

CVE-2024-52985 CVSS:7.8

Animate versions 23.0.8, 24.0.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-52986 CVSS:7.8

Animate versions 23.0.8, 24.0.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-52987 CVSS:7.8

Animate versions 23.0.8, 24.0.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-52988 CVSS:7.8

Animate versions 23.0.8, 24.0.5 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-52989 CVSS:7.8

Animate versions 23.0.8, 24.0.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-52990 CVSS:7.8

Animate versions 23.0.8, 24.0.5 and earlier are affected by a Buffer Underwrite ('Buffer Underflow') vulnerability that could result in arbitrary code execution in the context of the current user. An attacker could leverage this vulnerability to manipulate memory in such a way that they could execute code under the privileges of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-52991 CVSS:5.4

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.

CVE-2024-52992 CVSS:5.4

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.

CVE-2024-52993 CVSS:5.4

Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.

CVE-2024-52994 CVSS:7.8

Substance3D - Sampler versions 4.5.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-52995 CVSS:7.8

Substance3D - Sampler versions 4.5.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-52996 CVSS:7.8

Substance3D - Sampler versions 4.5.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-52997 CVSS:7.8

Photoshop Desktop versions 26.0 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-52999 CVSS:7.8

Substance3D - Modeler versions 1.14.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-53000 CVSS:7.8

Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-53001 CVSS:7.8

Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-53002 CVSS:7.8

Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-53003 CVSS:7.8

Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-53004 CVSS:5.5

Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-53005 CVSS:5.5

Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-53006 CVSS:5.5

Substance3D - Modeler versions 1.14.1 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-53951 CVSS:5.5

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-53952 CVSS:5.5

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial of service condition. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-53953 CVSS:7.8

Animate versions 23.0.8, 24.0.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVE-2024-53954 CVSS:7.8

Animate versions 23.0.8, 24.0.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Impact

  • Denial of Service
  • Gain Access
  • Code Execution
  • Security Bypass
  • Buffer Overflow
  • Cross-Site Scripting
  • Information Disclosure

Indicators of Compromise

CVE

  • CVE-2024-52985
  • CVE-2024-52986
  • CVE-2024-52987
  • CVE-2024-52988
  • CVE-2024-52989
  • CVE-2024-52990
  • CVE-2024-52991
  • CVE-2024-52992
  • CVE-2024-52993
  • CVE-2024-52994
  • CVE-2024-52995
  • CVE-2024-52996
  • CVE-2024-52997
  • CVE-2024-52999
  • CVE-2024-53000
  • CVE-2024-53001
  • CVE-2024-53002
  • CVE-2024-53003
  • CVE-2024-53004
  • CVE-2024-53005
  • CVE-2024-53006
  • CVE-2024-53951
  • CVE-2024-53952
  • CVE-2024-53953
  • CVE-2024-53954

Affected Vendors

Adobe

Affected Products

  • Adobe Experience Manager 6.5.21
  • Adobe InDesign Desktop ID19.5
  • Adobe InDesign Desktop ID18.5.4
  • Adobe Substance3D - Modeler 1.14.1
  • Adobe Animate versions 23.0.8
  • Adobe Animate versions 24.0.5
  • Adobe Substance3D - Sampler 4.5.1
  • Adobe Photoshop Desktop 26.0

Remediation

Refer to Adobe Security Advisory for patch, upgrade, or suggested workaround information.

CVE-2024-52985

CVE-2024-52986

CVE-2024-52987

CVE-2024-52988

CVE-2024-52989

CVE-2024-52990

CVE-2024-52991

CVE-2024-52992

CVE-2024-52993

CVE-2024-52994

CVE-2024-52995

CVE-2024-52996

CVE-2024-52997

CVE-2024-52999

CVE-2024-53000

CVE-2024-53001

CVE-2024-53002

CVE-2024-53003

CVE-2024-53004

CVE-2024-53005

CVE-2024-53006

CVE-2024-53951

CVE-2024-53952

CVE-2024-53953

CVE-2024-53954